Security GRC Analyst
Listed on 2026-07-03
-
IT/Tech
Cybersecurity, Information Security, Data Security
Role Overview
The Security GRC (Governance, Risk, and Compliance) Analyst role is part of our Security and Compliance team, sitting at the intersection of internal operations and external audit relationships. As a key partner to control owners and external auditors, you will lead our Unified Audit program, ensuring compliance, audit readiness, and continuous improvement across multiple frameworks.
Responsibilities- Lead the end-to-end Unified Audit program across SOC2, HIPAA, ISO
27001, and GxP frameworks, coordinating schedules and minimizing duplication across certifications. - Manage internal evidence collection by assigning tasks to control owners, tracking deadlines, validating submissions, and conducting pre-audit gap reviews.
- Serve as the primary liaison with external auditors—scheduling walkthroughs, responding to information requests, and coordinating responses to findings.
- Maintain compliance dashboards, standard operating procedures, and documentation repositories to support continuous monitoring and audit readiness.
- 2–4 years of experience in GRC, compliance, audit, or information security with hands‑on experience supporting or managing compliance audits.
- Working knowledge of at least two of the following frameworks: SOC2, HIPAA, ISO
27001, or GxP. - Proficiency with GRC tools, audit management platforms, and documentation systems (Microsoft Office Suite or Google Workspace).
- Excellent communication skills, capable of engaging both technical and non‑technical stakeholders, and adept at managing multiple concurrent deadlines.
- Relevant certifications such as CISA, CRISC, CISSP, or ISO
27001 Lead Auditor/Implementer. - Experience with unified or integrated audit programs, or a background in healthcare or life sciences.
- Hands‑on experience with GRC platforms such as Drata, Vanta, One Trust, or Service Now GRC.
- Direct experience working with external audit firms in a compliance or security capacity.
The typical base salary range for this position is $96,300 – $145,200 annually. In select San Francisco and New York City metropolitan areas, the range is $116,000 – $159,500 annually. Benefits include paid time off, medical, dental, vision, mental health support, 401(k) program, and an employee stock purchase plan.
Equal Opportunity Employer StatementSalesforce is an equal‑opportunity employer and maintains a policy of non‑discrimination with all employees and applicants for employment. Employment decisions are based on merit, competence, and qualifications, without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, or other protected classifications.
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).